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Abstract: Cloud computing allows users to view 
computing in a new direction, as it uses the existing 
technologies to provide better IT services at low-cost. 
To offer high QOS to customers according SLA, cloud 
services broker or cloud service provider uses 
individual cloud providers that work collaboratively to 
form a federation of clouds. It is required in 
applications like Real-time online interactive 
applications, weather research and forecasting etc., in 
which the data and applications are complex and 
distributed. In these applications secret data should be 
shared, so secure data sharing mechanism is required 
in Federated clouds to reduce the risk of data 
intrusion, the loss of service availability and to ensure 
data integrity. So In this paper we have proposed zero 
knowledge data sharing scheme where Trusted Cloud 
Authority (TCA) will control federated clouds for data 
sharing where the secret to be exchanged for 
computation is encrypted and retrieved by individual 
cloud at the end. Our scheme is based on the difficulty 
of solving the Discrete Logarithm problem (DLOG) in 
a finite abelian group of large prime order which is 
NP-Hard. So our proposed scheme provides data 
integrity in transit, data availability when one of host 
providers are not available during the computation. 

Keywords: Cloud computing, Federated clouds, 
Secure Data sharing, SMC, WRF, Encrypted secret, 
primitive polynomial, primitive number. 

I. INTRODUCTION 

Cloud computing can be viewed as a new paradigm 
for dynamic and controlled provisioning of sharable 
computing resources, maintained by state-of-the-art 
data centers based on network of Virtual Machines 
running on high powered physical machines. NISTfl] 
defines Cloud computing whose main design aim is to 
provide convenient, on-demand, network access to a 
shared pool of configurable computing resources (e.g. 
networks, servers, storage, applications, and services), 
which can be rapidly provisioned and released with 
minimal management effort or service provider 
interactions. Cloud can be deployed in public, private 
or hybrid models which provides services in various 



forms like Software as a Service-SaaS (e.g. Google 
apps, 2011), Platform as a Service-PaaS (e.g. Google 
app engine (2011), Microsoft's Azure (Azure services 
platform, 2011)) and Infrastructure as Service-IaaS 
(e.g. Amazon web services, 2011(AWS); Eucalyptus, 
2011; Open Nebula (OpenNebula, 2011).To deliver 
the services efficiently cloud should possess the 
characteristics like Resource pooling, Virtualization, 
Multi-tenancy, On-demand self-service, Rapid 
elasticity ,metered service etc., as show in Fig-1. 
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Figure 1: Cloud Computing Model 

Slow access to data, applications, and Web pages 
frustrates employees and customers alike, and some 
performance problems and bottlenecks can even cause 
application crashes and data losses. So as to improve 
the performance, providers has to increase computing 
resources by their aggregated capabilities to provide 
infinite computing services through federation and 
interoperability. 
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As cloud computing evolves, the vision of federated 
clouds across which Communications, data, and 
services can move easily within and across several 
cloud infrastructures — adds another layer of 
complexity to security equation. Even though 
federated Cloud paradigm aims to provide flexible and 
reliable services composed of a mixture of internal and 
external mini-clouds, but this heterogeneous nature is 
also fuelling the security concerns of the customers. To 
allay the fears and deal with the threats associated with 
outsourcing data and applications to the Cloud, new 
methods for security assurance are urgently required. 
Cloud providers should address privacy and security 
issues as a matter of high and urgent priority. In this 
paper among the various security issues we consider 
the issue of exchanging of private data between the 
clouds in federation securely. 

The purpose of this paper is to provide a new data 
sharing scheme for federated clouds which comprises 
various host providers which ensures privacy and 
availability of data. The remainder of this paper is 
organized as follows Section-2 summarizes previous 
work in the area of federated computing and its 
security. Section-3 introduces the federation 
computing, technologies and various security issues. 
Section- 4 specifies the proposed model and Section-5 
provides working mechanism of the model. In Section- 
6 we have given results for the scheme and final 
section we have given our conclusions along with 
future work. 

II. RELATED WORK 

As in [3] Federation is the ability of multiple 
independent resources to act like a single resource. 
Cloud computing itself is a federation of resources, so 
the many assets, identities, configurations and other 
details of a cloud computing solution must be 
federated to make cloud computing practical. Also 
many issues like trust, Identity access management, 
Signing-in has been discussed regarding Federation of 
clouds. 

Buyya et al. in [4] suggests a cloud federation 
oriented, just-in-time, opportunistic and scalable 
application services provisioning environment called 
InterCloud. As a result Cloud application service 
(SaaS) providers will have difficulty in meeting QoS 
expectations for all their consumers. Hence, they 
would like to make use of services of multiple Cloud 
infrastructure service providers who can provide better 
support for their specific consumer needs. This kind of 
requirements often arises in enterprises with global 
operations and applications such as Internet service, 
media hosting, and Web 2.0 applications. This 
necessitates building mechanisms for federation of 
Cloud infrastructure service providers for seamless 



provisioning of services across different Cloud 
providers. 

In paper by Subashini and kavitha[5], has discussed 
various security issues at various service models like 
Data security, Network security, Data locality, Data 
integrity, Data segregation, Data access, 
Authentication and authorization. Cloud computing 
has significant implications for the privacy of personal 
information as well as for the confidentiality of 
business and governmental information. In the case of 
federated clouds this becomes more serious issue that 
is to be addressed. For computation exchange of data 
between clouds in federation is necessary so both 
privacy and integrity of data should be considered. 

Even within the cloud provider' s internal network, 
encryption and secure communication are essential, as 
the information passes between countless, disparate 
components through network domains with unknown 
security, and these network domains are shared with 
other organizations of unknown reputability[6].The 
confidentiality of sensitive data must be protected from 
mixing with network traffic with other cloud hosts. If 
the data is shared between multiple users or clouds , 
the CSP must ensure data integrity and consistency. 
The CSP must also protect all of its cloud service 
consumers from malicious activities or data 
modification [7-8]. 

In [10] Mohammed Abdullatif et.al, has discussed 
about data privacy in DAAS. In their paper Shamir's 
secret sharing mechanism has been used for securing 
data , so that individual data values will not be visible 
to the service provider and provider can recover data in 
case of data loss. By above literature study we have 
proposed this scheme for secure data sharing in 
federated clouds which ensures that secret data used in 
computation is not visible to anyone except to owner 
of data ie., one of the cloud host provider who 
participates in computation by sharing data and avoids 
modification of data due to malicious host. 

III. FEDERATION COMPUTING 

Cloud federation brings together different service 
providers and their offered services so that many 
Cloud variants can be tailored to match different sets 
of customer requirements. Cloud provider can provide 
resources to satisfy complex application request only if 
he holds infinite resources at his premises. Since this is 
not the case, so providers need to collaborate to be able 
to fulfill requests during peak demands and negotiate 
the use of idle resources with other peers. This is the 
goal of federation. The main purpose of moving to 
federated clouds is to improve what was offered in 
single clouds by distributing reliability, trust, and 
security among multiple cloud providers. 
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When increasing resources on the cloud to restore 
or improve application performance, administrators 
can scale either horizontally (out) or vertically (up), 
depending on the nature of the resource constraint. 
Vertical scaling (up) entails adding more resources to 
the same computing pool — for example, adding more 
RAM, disk, or virtual CPU to handle an increased 
application load. Horizontal scaling (out) requires the 
addition of more machines or devices to the computing 
platform to handle the increased demand. Scalability is 
the inherent feature of cloud computing which has at 
least two dimensions, namely horizontal cloud 
scalability and vertical cloud scalability [2]. Horizontal 
cloud scalability is the ability to connect and integrate 
multiple clouds to work as one logical cloud. 

For instance, a cloud providing calculation services 
(calculation cloud) can access a cloud providing 
storage services (storage cloud) to keep intermediate 
results. Two calculation clouds can also integrate into 
a larger calculation cloud. Vertical cloud scalability 
can be used to improve the capacity of a cloud by 
enhancing individual existing nodes in the cloud (such 
as providing a server with more physical memory) or 
improving the bandwidth that connects two nodes. 
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Figure 2: Federated Clouds 

A. Cloud Federation Technologies 

As discussed in [9] the following technologies 
provide mechanisms which support Cloud services and 
even federation. Such as, Open Nebula provides an 
open- source and extensible architecture that can be 
modified to fit an individual Cloud. It can be leveraged 
by adding APIs and plug-ins to the existing 
architecture in order to facilitate inter-Cloud 
communication at different layers of the service stack. 
Eucalyptus is also an open-source framework that uses 
storage and computational infrastructure to provide a 
Cloud computing platform. Eucalyptus provides a 
modular, extensible framework with an Amazon EC2 



compatible interface which can be utilized for 
federation at the IaaS layer. CometCloud is an 
autonomic computing engine that enables the dynamic 
and on-demand federation of Clouds as well as the 
deployment and execution of applications on these 
federated environments. It supports heterogeneous and 
dynamic Cloud infrastructures, enabling the 
integration of public/private Clouds and autonomic 
Cloud bursts, i.e., dynamic scale-out to Clouds to 
address dynamic workloads. Conceptually, 
CometCloud is composed of a programming layer, 
service layer, and infrastructure layer. 

B. Security issues in Federated Clouds 

All the above technologies does not specify any 
security related measures for federated environment at 
any service layer, to address the data integrity, data 
availability and sharing. Federated clouds pose 
challenges like whether the client or other cloud is 
servicing according to SLA agreements. The diversity 
and flexibility of the capabilities envisioned by Inter- 
cloud enabled federated Cloud computing model, 
combined with the magnitudes and uncertainties of its 
components, pose difficult problems and challenges in 
effective provisioning and delivery of application 
services in an efficient and secured manner [11]. 
Security is one of the most important and paramount 
elements of such a computing environment. 

In a cross-clouds federated environment, security 
concerns are even more important and complex. Cloud 
computing paradigm, in general, will only be adopted 
by the users, if they are confident that their data and 
privacy are secured. Cloud computing involves the 
sharing or storage by users of their own information on 
remote servers owned or operated by others and 
accesses through the Internet or other connections. 
Cloud computing services exist in many variations, 
including data storage sites, video sites, tax preparation 
sites, personal health record websites and many more. 
The entire contents of a user's storage device may be 
stored with a single cloud provider or with many cloud 
providers. Whenever an individual, a business, a 
government agency, or any other entity shares 
information in the cloud, privacy or confidentiality 
questions arise which should be properly addressed to 
tap the market among various cloud players. 

IV. PROPOSED SCHEME 

Our secure data sharing scheme for Federated cloud 
contains various cloud instances belonging to same 
Cloud host or different hosts that participate in 
computation to get overall benefit which is not 
possible with a single cloud. Each cloud instance will 
share their data secretly without knowing other hosts 
data thus ensuring privacy and achieve the final result. 
Cloud host providers Exchanges data to solve the n 2 
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problem by facilitating as mediators for enabling 
connectivity among disparate cloud environments. 

In our proposed scheme whenever customer 
requests cloud host provider for service, also if it is an 
complex application request and the computation 
depends on other cloud hosts values then it is required 
to form into federation of clouds as shown in figure-2 
above. Among the cloud one will act as Trusted Cloud 
authority (TCA) which will control and coordinate 
entire computation. TCA will request will accepts 
credential / if already contains credentials of each 
cloud it will use it to initialize the secure data sharing 
scheme by giving secret keys and initiate the process. 
The various phases of working in our proposed scheme 
are described in the next section and outlined 
diagrammatically in the given figure-3. 

Upon request from client/application TCA will 
creates a Session for that particular instance of 
computation and session-id's are dynamically created 
for each host participating in computation. Session-id's 
are sent to all the cloud hosts in federation privately. 
Session-id can be used for authentication when each of 
them exchange data during computation. Internally 
cloud hosts will have co-coordinators to coordinate the 
computation which will work according to SLA. Our 
scheme uses SMC [12] mechanism but the secret value 
used in data sharing is encrypted which is difficult to 
know as we have used DL technique and finally each 
cloud can decrypt the final value by using their secret 
keys. In our scheme secret value will not be known to 
the TCA also, as it is encrypted by hosts with their 
own keys. 
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Figure 3: Proposed secure data sharing in Federated 
Clouds 

V. WORKING OF PROPOSED SCHEME 

The proposed scheme is used to secure secret data 
when shared during computation between federated 
clouds. In this scheme the secret data is encrypted and 
decrypted by the each cloud to retrieve original value. 
We assume that following assumptions hold good at 
initialization phase. 

1. That TCA and cloud hosts providers exchange 
data securely 

2. All Cloud providers are honest without malicious 
in nature. 

The data sharing scheme works in following phases as 

1 . Initialization Phase 

2. Distribution Phase 

3. Verification Phase 

4. Recovery Phase 

A. Initialization Phase 

In this phase TCA will starts session and session 
id's are sent to all clouds secretly that participate in 
computation. Then TCA by using their credentials 
computes and sends private and public keys for cloud 
hosts in federation for computation. 

Let Ci,C2,C3, C n are the clouds 

involved in computation. 

1. The credentials of each cloud Q are sent to TCA by 
Ci,C2....C n 

2. TCA generates large primes CPi from credentials of 
each cloud Q. 

3. TCA computes NPi=2*CPi 

4. For each cloud Q, TCA generates a primitive root 
'gi' from NPi. 

5. TCA sends gi securely which is private to each 
cloud Q, and NPi is public to all the clouds. 

1. Each cloud Ci generates a group ZNpi* with the 
generator gi and Npi. 
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2. Ci builds Galois field (GF) consisting of primitive 
elements with the group ZNpi* ie., Galois 
field(ie.,GF(gibi) has <D(gibi - 1) primitive 
elements where bi G ZNpi*. 

3. Each cloud Ci generates a polynomial fi(x) with 
coefficients in GF and hence fi(x) is a primitive 
polynomial. 

[ie. fi(x) = aO x+ alxl+ a2x2+ +an-lxn-l] 

where fi(0)=aO 

C. Distribution Phase 

In this phase each cloud host in federation exchange 
secrets for computation to achieve final polynomial 
with secret value in encrypted form 

1. Each Coefficient ai in primitive polynomial fi(x) is 
the primitive number in GF(gibi) where 0<i< n-1 
and aO is secret value of Ci. 

2. Each Ci computes, a0= Sidi where di=(gibi)5I 
where 5i C ZNpi* such that gibi 5i= 1 mod Npl 
here Si is the secret that is to be shared between 
clouds during computation. 

3. Each Cloud Ci implements Secure Multiparty 
Computation (SMC) scheme and computes final 

sum polynomial F(x)= and coefficients 

are in GF sends it to TCA for verification. 

D. Verification Phase 

In this phase each cloud host in federation verifies 
the secret value by decrypting and finds the malicious 
host if exists and reports to TCA or rejects its value. 

Note: Any polynomial f(x) with co-efficient of GF(P) 
satisfies the Identity, F(x p )=[f(x)] p (since gi=P and 
GF(P)=GF(gO) 

1. TCA randomly selects a prime gpi that satisfies the 
identity stated above. 

hence F(xgpi)=F(x)gpi 

2. Then TCA chooses a small random number ti C Z+. 
Vti 3 hi C Z+ 3hiti=l (mod gpi). 

3. TCA sends gpi, hi,ti to the corresponding clouds Ci 
and announces as public to all the clouds. 

4. Each cloud Ci chooses a secret element rieGF(gibi) 
such that Xri=hi(mod F(x), gpi) 

5. Each cloud Ci verifies Cj as Xritj =(Xri) tj =hj tj 
=l(mod(F(x),gpj)) 

6. If any cloud Ci is malicious then the above 
congruence dissatisfies, since the Sum Polynomial 
F(x) sent from Ci to Cj is wrong. 

Case 3: Assuming that there are >=n/2 cloud hosts are 
malicious in federation. 



ie. Xritj ^ l(mod F(x),gpi) 
E. Recovery Phase 

In this phase after verification by each cloud Q , the 
secret is recovered by using following steps by each 
party . Secret can be recovered even if there exists a 
malicious party m(m<n/2). 

S=Z(Sidi) where di=(g bl )5i where Si C Z npi * such that 
gi bl 5,= 1 mod npi 

S = S 1 (g 1 b 1 )5 1 +S 2 (g 2 b 2 )5 2 + +S n (g n b n )5 n . 

=Sigi b i.5i+ S 2 g 2 b 2 .5 2 + + 

+S n g n b n .5 n 

=Si(giV gf b ! mod npO+ S 2 (g 2 b 2 * g 2 b 2 mod 

np 2 )+ + S n (g n b n * g n " b n mod np n ) 

= Si (gi° mod npO+ S 2 (g 2 ° mod np 2 ) 

+ + S n (g n ° modnp n ) 

= Si*l+ S 2 *l+ + S n *l 

= Si+S 2 + +s n 

Further in recovery phase SMC can be applied to 
the following three cases in recovering secret if 
malicious cloud host exists during data sharing or data 
recovery when it is distributed among multiple or 
federated clouds. 

Case 1: Assume All 'n' clouds hosts in federation are 
Honest for 'n' honest clouds, The co-efficient of x 0 in 
sum polynomial F(x) is the sum of secret shares of all 
Ci and it is valid for each Ci iff x Vi=l(niod F(x),gpi) 

Case 2: Assume that n-1 cloud hosts in a Federation 
are Honest with some are malicious 

For 'n-1' honest clouds, If any cloud is dishonest 
among 'n' clouds the 'n-1' clouds together obtains the 
sum of secret shares as sum of secret shares as 

For n-1 parties we reconstruct secret S as 

C _ / g b \8 ( g b x8 , / g b x8 

^n-l-VSl 1 l) 1+VS2 2 2) 2+ +VSn-l n-1 n-U n-1- 

In the sum Polynomial, the sum of the secrets obtained 
by each cloud is , 

S=Z(Sidi) where di=(g bl )5i where 5i C Z Npi * such that 
gi bi 5i= 1 modNpi 

S = S 1 (g 1 b 1 )5 1 +S 2 (g 2 b 2 )5 2 + +S n (g n b n )5 n . 

=Sig! b i.5i+ S 2 g 2 b 2 .5 2 + 

+ S n g n b n .5 n 

S= S n _i+ S n g n b n .5 n 

i^-? S n g n n .8 n =S-S n _i 



If n/2 are malicious clouds then 



S = S 1 (g 1 b 1 )5 1 +S 2 (g 2 b 2 )5 2 +. 
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S2(gn/2 b n/2)5n/2+ +S n (gn b n)S n 

S = S 1 (g 1 b 1 )5 1 +S 2 (g2 b 2)52+ 



S2(g n/2 b n/2)8n/2+ +S n (g n b n )5 n +S n (g n b n )8 n 

S = 4*(n/2) unknowns+ +S n _i+S n 

S^Sn/2 

The unknowns in the sum polynomial are 2n, so it is 
not possible to get S from 2n unknowns. 

VI. EXPERIMENTAL ANALYSIS OF PROPOSED 

SCHEME 

We have verified the only the base scheme used in 
data sharing between the clouds by using Java 1.7 on 
Intel Core-i3 processor with 4 GB RAM. We have 
taken only small values as credentials due to 
computation resource constraint which has given 
following results, here number of clouds in federation 
is taken as 4. 

Enter how many Clouds involve in Federation for 
Communication: 4 

A. Generation of Parameters: 

Enter the grant type: Client 

Enter the service type: Application 

Enter the client name: Amazon 

Enter the client region: Asia 

Enter the client location: India 

Enter the service payment: 250000000 

Enter the service expiry date: 3 l-Dec-2025 

Cp = 4327 Npl = 8654 gl = 8647 



Enter the grant type: 

Enter the service type: 

Enter the client name: 

Enter the client region: 

Enter the client location: Mexico 

Enter the service payment: 

Enter the service expiry date: 

Cp = 5669 Np2= 11338 

Enter the grant type: 
Enter the service type: 
Enter the client name: 
Enter the client region: 
Enter the client location: 
Enter the service payment: 
Enter the service expiry date: 

Cp = 6203 Np3 = 12406 

Enter the grant type: 
Enter the service type: 
Enter the client name: 
Enter the client region: 
Enter the client location: 
Enter the service payment: 
Enter the service expiry date: 



Client 
Application 
Google Docs 
America 
City 

3000000000 
31-Dec-2030 

g2= 11311 

Client 
Application 
Google Cloud Services 
Asia 
Pakistan 
300000000000 
3 l-Dec-2025 



g3 = 12401 

Client 

Application 

HP Cloud Provider 

Asia 

Bangladesh 

3600000000 

31-Dec-2035 



Cp = 5843 Np4= 11686 g4= 11681 

B. Generation of Polynomials: 

(7)X A 3 + (26)X A 2 + (6)X A 1 + (2)X A 0 
(19)X A 3 + (16)X A 2 + (12)X A 1 + (4)X A 0 

(10) X A 3 + (13)X A 2 + (3)X A 1 + (6)X A 0 
(24)X A 3 + (15)X A 2 + (19)X A 1 + (8)X A 0 

C. Distribution of Secret : 

si =2 (original secret) 

s2=4 (original secret) 

a0= sidi= 646541456023 (E)encrypted) 

a0= s 2 d 2 = 1636831633111541 (E)encrypted) 

s3=6 (original secret) 

s4=8 (original secret) 

a0= s 3 d 3 = 293280735995777662001(E) 

a0= s 4 d 4 = 254027 154571259101 024608 1 (E) 

where di=(gi bl )5i where 5i C Z Npi * such that gi bl 8i= 1 
mod Npi == > 8i= gi" bl mod Npi 

The revised polynomials are: 

(24)X A 3 + (4)X A 2 + (20)X A 1 + (83683061 30700080)X A 0 
(3)X A 3 + (18)X A 2 + (23)X A 1 + 
(2076343 186244444682973568)X A 0 
(18)X A 3 + (24)X A 2 + (20)X A 1 + 
(21783804456699014989946336906386176)X A 0 

(11) X A 3 + (4)X A 2 + (24)X A 1 + 

(16408063398992467575067769015170019871641600)X 
A 0 

The Sum of the Polynomials obtained at each party is 

(56)X A 3 + (50)X A 2 + (87)X A 1 + 
16408063420776272031766784005116356778027776 
)X A 0 (encrypted value) original values is (20) 

D. Recovery of Secret: 

Case 1: Assuming there are no malicious cloud host 
in Federation of clouds 



S = 
S = 

s = 



Z(Sidi) i=l,2,3,4 
Sidi+ s 2 d 2 + s 3 d 3 + s 4 d 4 

S 1 (g 1 b 1 )5 1 +S 2 (g 2 b 2 )5 2 + S 3 (g3 b 3)53+S 4 (g4 b 4)54. 
Sigi b i.8i+ S 2 g 2 b 2 .5 2 + S 3 g3 b 3.5 3 + S 4 g4 b 4.5 4 
Si(gi b i* gf b i mod np0+ S 2 (g 2 b 2 * g 2 " b 2 mod np 2 )+ 
S 3 (g 3 b 3 * g 3 " b 3 mod np 3 )+ S 4 (g 4 b 4 * gA mod np 4 ) 
Si (gi° mod np0+ S 2 (g 2 ° mod np 2 )+ 



= Si (gi mod np0+ S 2 (g 2 mod i 
S 2 (g 3 ° mod np 3 )+ S 4 (g 4 ° mod np 4 ) 
= Si*l+S 2 *l+S 3 *l+S 4 *l 



Case 2: Assuming honest clouds in federation are <=n- 
1 



— I ^ ■ " z. - ■ " 

S1+S2+ S3+S4 

S= 2+4+6+8 
S= 20 



S 0 = HSidi) i=l,2,3 
S 0 = sidi+ s 2 d 2 + s 3 d 3 
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d4 



S 0 = S 1 (g 1 b 1 )5 1 +S 2 (g 2 b 2 )5 2 + S 3 (g3 b 3)5 3 

= Sigi b i.5i+ S 2 g 2 b 2 .5 2 + S 3 g3 b 3.5 3 

= S^gA* g{\ mod npO+ S n (g 2 b 2 * g 2 b 2 mod np 2 )+ 

S 3 (g 3 b 3 * g 3 " b 3 mod np 3 ) 
= Si (gi° mod npO+ S 2 (g 2 ° mod np 2 )+ 

S 2 (g 3 ° mod np 3 ) 
= S 1 *l+S 2 *l+S 3 *l 
= S!+S 2 +S 3 
So= 2+4+6 
S 0 = 12 

The original Sum of Secrets is, S=20 

S— Sq+ S4 
20=12+ S 4 d4 
S 4 d4 =20-12c 
S 4 d4 =8 

Therefore, S=S 0 + S 4 
S=12+8 
S=20 

The Sum of the Polynomials after recovering the 
secret at each party is :: 

(56)X A 3 + (50)X A 2 + (87)X A 1 + (20)X A 0 



Case 3: Assuming we are having n/2 or (n-l)/2 are 
malicious clouds 

S= S 1 (g 1 b 1 )5 1 +S 2 (g 2 b 2 )5 2 + + S 2 (g 

n/2 b n/2)8 n /2+ +S n (gn b n)8 n 

S= S 1 (g 1 b 1 )5 1 +S 2 (g 2 b 2 )5 2 + + S 2 (g 

n/2 b n/2)5 n /2+ +S n (gn b n)5 n +S n (g n b n)5n 

S= 4*(n/2) unknowns+ +S n _i+S n 

S^S n/2 

The unknowns in the sum polynomial are 2n, so it is 
not possible to get S from 2n unknowns. 

VII. USE CASES 

In Weather Research and Forecasting application 
used for Agriculture or for any governmental purposes 
uses values from different cloud host stations at 
different locations to analyses the final result which 
works in federation. Here data should be correct and 
secure so that it may not give wrong results which may 
lead to disaster. 

For forecasting stations, due to the nature of certain 
weather phenomena such as hurricanes or tornadoes, 
performing accurate predictions in very short time 
spans is vital to make appropriate preparations 
involving business operations management and 
government and human related logistics. Thus, sharing 



of resources between institutions to provide elasticity 
and dynamic capacity in extreme situations is key. 

The applications like Online Voting or Online 
Bidding or Real time Game playing stations when 
deployed on clouds uses multiple hosts at located at 
different geographical areas will demands data to have 
privacy and secure. 

VIII. CONCLUSION 

Cloud computing key role in IT sector in delivering 
services at low cost and in an effective manner. Clouds 
should form into federation in order to perform 
computation collectively to achieve a result. At the 
same time the security threats like data should be 
addressed with by using novel techniques. In this paper 
we have used threshold data sharing technique to be 
used in federation of clouds which allows data privacy 
and security in transit between them. We have 
analyzed the base scheme and results are noted. The 
same technique can be used to recover data when 
distributed between multiple clouds and one of the 
cloud host was not available due to natural disaster or 
technical problem thus provides solution to data 
availability in cloud computing. In future we try to 
implement this technique on real time cloud and also 
for authenticating automated applications running on 
clouds. 
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